Philsh
asked on
Problem with Exchange Certificate
It appeared that we were having a certificate issue on our exchange server. I purchased a new UCC from GoDaddy and installed it. However, even after installing this and running enabling cmdlet, I continue to get this error. No one can connect via Outlook or OWA. Help.
"The name on the security certificate is invalid or does not match the name of the target site exchangeserver.
... (Error Code 10)
"The name on the security certificate is invalid or does not match the name of the target site exchangeserver.
... (Error Code 10)
ASKER
Reran get-exchangecertificate and it shows all going to the right certificate. How can I see what IIS is using? Thanks.
ASKER
Do I need Exchangeserver as a SAN by itself with no xxx.org at the end?
You need to have your CN=mail.domain.com and you need to add all of the SAN names to it.
mail.domain.com
autodiscover.mail.com
You then need to make sure that your URL's correspond with the DNS names you have in your certificate SAN names.
Will.
mail.domain.com
autodiscover.mail.com
You then need to make sure that your URL's correspond with the DNS names you have in your certificate SAN names.
Will.
ASKER
Looks like a bigger issue. I noticed that my storage groups are disabled. I cannot mount the database files. They are there but I I think the group has been damages as it won't let me enable them.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Multiple issues: both certificate and disk drive.
Also re-run get-ExchangeCertificate and ensure that the new cert has all of the appropriate services applied.
Enable-Exchange Certificate -ThumbPrint xxxxxxxxxxxxxxxxxxxxxx -services "smtp,iis,pop,imap"
It should prompt to be the default: Y
Also checking IIS and seeing what cert it is using as well.
Will.